This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/700333-aa9c-4bd3-8204-48cd05eca736/1/uoGySm1gML8IjeowyaWTL-vcanw.mft File: uoGySm1gML8IjeowyaWTL-vcanw.mft (raw, json) Hash identifier: izKS37nMaKn20BQmQ/8yoWOb00AHkkMbKyWQBzoxvC4= Subject key identifier: 3A:33:3F:35:DC:1B:EE:9A:37:81:60:B7:07:02:65:50:0C:76:2B:92 Authority key identifier: BA:81:B2:4A:6D:60:30:BF:08:8D:EA:30:C9:A5:93:2F:EB:DC:6A:7C Certificate issuer: /CN=ba81b24a6d6030bf088dea30c9a5932febdc6a7c Certificate serial: 019AF164428BC3F010F0D7656DC8619F4103 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uoGySm1gML8IjeowyaWTL-vcanw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/700333-aa9c-4bd3-8204-48cd05eca736/1/uoGySm1gML8IjeowyaWTL-vcanw.mft Manifest number: 0228 Signing time: Sat 06 Dec 2025 02:01:10 +0000 Manifest this update: Sat 06 Dec 2025 02:01:10 +0000 Manifest next update: Sun 07 Dec 2025 02:01:10 +0000 Files and hashes: 1: dHqraQM0J28TwBZI9kOV-wg_Nys.roa (hash: 9SP50kXHayfJ5rdM97ecdGjoNLOBx7zfNbIDZBfMyaE=) 2: uoGySm1gML8IjeowyaWTL-vcanw.crl (hash: 0jb2K6g76hR2vSf0hEdOBQHC63fDW5oPuWEqv09iDHY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/700333-aa9c-4bd3-8204-48cd05eca736/1/uoGySm1gML8IjeowyaWTL-vcanw.crl rsync://rpki.ripe.net/repository/DEFAULT/7e/700333-aa9c-4bd3-8204-48cd05eca736/1/uoGySm1gML8IjeowyaWTL-vcanw.mft rsync://rpki.ripe.net/repository/DEFAULT/uoGySm1gML8IjeowyaWTL-vcanw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:42:8b:c3:f0:10:f0:d7:65:6d:c8:61:9f:41:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba81b24a6d6030bf088dea30c9a5932febdc6a7c Validity Not Before: Dec 6 02:01:10 2025 GMT Not After : Dec 7 02:01:10 2025 GMT Subject: CN=3a333f35dc1bee9a378160b7070265500c762b92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:fd:fe:e2:53:3d:6d:fc:2d:b0:b3:8b:65:09: ad:d3:77:00:1b:03:be:ad:b0:3e:7f:a9:97:98:c6: af:16:d7:7f:48:d0:17:c0:35:a0:e9:2a:6f:28:c7: 67:ed:22:bb:15:14:4e:6f:bb:8b:90:ff:94:61:af: cf:f5:54:02:ee:a4:0c:09:b3:2c:fb:f5:79:2c:d3: 6d:84:f2:5b:5d:f8:b9:9d:c5:df:09:93:ad:f8:62: 6d:d1:7c:6a:6d:ad:9f:c5:bd:79:ea:f6:2b:e9:3c: df:00:33:f0:76:e6:68:0b:87:92:5a:40:21:3d:e0: 43:38:28:4e:5b:6d:a4:d8:0f:38:1d:f4:b0:34:2f: a6:15:2a:be:2d:c7:d4:89:b6:0f:bb:8a:41:ad:93: 67:3b:c9:f0:ee:66:d5:01:49:53:ee:0c:fd:22:27: 7d:2b:9c:05:42:06:2b:64:04:e4:9c:df:cc:56:19: 54:47:17:54:61:c4:dc:cb:b6:fc:f9:b0:61:50:30: 28:89:bb:31:34:a9:80:d7:a0:68:f7:d3:3f:24:14: 5d:ee:ee:e3:63:57:24:85:cf:0e:5e:af:40:5b:24: 85:82:0f:d0:bc:49:70:87:23:33:0b:86:45:22:33: ea:73:2a:cc:82:4b:0f:54:bc:ed:5e:2e:1a:a6:f6: cc:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:33:3F:35:DC:1B:EE:9A:37:81:60:B7:07:02:65:50:0C:76:2B:92 X509v3 Authority Key Identifier: keyid:BA:81:B2:4A:6D:60:30:BF:08:8D:EA:30:C9:A5:93:2F:EB:DC:6A:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uoGySm1gML8IjeowyaWTL-vcanw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/700333-aa9c-4bd3-8204-48cd05eca736/1/uoGySm1gML8IjeowyaWTL-vcanw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/700333-aa9c-4bd3-8204-48cd05eca736/1/uoGySm1gML8IjeowyaWTL-vcanw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:7e:b8:d3:f4:5b:7a:ba:65:dc:07:02:2b:7c:64:9d:b7:98: 09:f2:e6:0a:f3:88:48:d5:4a:99:24:bd:d5:c3:24:cc:aa:03: 4f:8f:e8:1c:6d:24:a9:a1:b3:c4:de:49:8c:17:4e:7d:15:ce: 64:ae:37:04:fc:34:ec:7f:83:40:80:19:7f:7d:1a:6a:41:d6: e0:38:b1:6f:80:92:ea:9d:06:85:13:3d:45:4c:a6:6a:ab:06: 7f:5c:2a:d3:38:37:a3:78:79:9e:1a:61:9e:06:ad:f4:e4:d6: 24:fd:6c:85:3c:a6:d4:c4:18:be:b5:ec:40:93:ee:c5:a4:61: 68:0f:4b:ab:14:a8:73:41:bb:25:13:f5:8e:cc:c6:6e:fd:bb: d7:c4:ce:7e:17:36:23:53:5b:bf:34:c1:a0:70:75:81:01:a7: 1b:ae:6c:1f:cb:08:67:9d:a6:db:ed:4c:b4:21:2e:09:3f:66: a0:c8:04:bd:cb:52:3e:d8:b4:ad:37:29:79:2e:2f:97:73:e7: 62:14:7d:52:61:c3:4b:b3:9a:7c:03:77:09:8a:ce:0c:cc:f7: 0a:38:e9:a7:62:5c:56:24:f2:a2:9d:28:43:20:42:dc:3a:c9: af:b1:4d:26:21:18:2d:8d:3e:3a:3f:2e:03:21:22:13:0d:db: a5:62:eb:db -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZEKLw/AQ8Ndlbchhn0EDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhODFiMjRhNmQ2MDMwYmYwODhkZWEzMGM5YTU5MzJmZWJk YzZhN2MwHhcNMjUxMjA2MDIwMTEwWhcNMjUxMjA3MDIwMTEwWjAzMTEwLwYDVQQD EygzYTMzM2YzNWRjMWJlZTlhMzc4MTYwYjcwNzAyNjU1MDBjNzYyYjkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAof3+4lM9bfwtsLOLZQmt03cAGwO+ rbA+f6mXmMavFtd/SNAXwDWg6SpvKMdn7SK7FRROb7uLkP+UYa/P9VQC7qQMCbMs +/V5LNNthPJbXfi5ncXfCZOt+GJt0Xxqba2fxb156vYr6TzfADPwduZoC4eSWkAh PeBDOChOW22k2A84HfSwNC+mFSq+LcfUibYPu4pBrZNnO8nw7mbVAUlT7gz9Iid9 K5wFQgYrZATknN/MVhlURxdUYcTcy7b8+bBhUDAoibsxNKmA16Bo99M/JBRd7u7j Y1ckhc8OXq9AWySFgg/QvElwhyMzC4ZFIjPqcyrMgksPVLztXi4apvbMEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDozPzXcG+6aN4FgtwcCZVAMdiuSMB8GA1UdIwQY MBaAFLqBskptYDC/CI3qMMmlky/r3Gp8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW9HeVNtMWdNTDhJamVvd3lhV1RMLXZjYW53LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS83MDAzMzMtYWE5Yy00YmQzLTgyMDQt NDhjZDA1ZWNhNzM2LzEvdW9HeVNtMWdNTDhJamVvd3lhV1RMLXZjYW53Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83ZS83MDAzMzMtYWE5Yy00YmQzLTgyMDQtNDhjZDA1ZWNhNzM2 LzEvdW9HeVNtMWdNTDhJamVvd3lhV1RMLXZjYW53LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfn640/Rb erpl3AcCK3xknbeYCfLmCvOISNVKmSS91cMkzKoDT4/oHG0kqaGzxN5JjBdOfRXO ZK43BPw07H+DQIAZf30aakHW4Dixb4CS6p0GhRM9RUymaqsGf1wq0zg3o3h5nhph ngat9OTWJP1shTym1MQYvrXsQJPuxaRhaA9LqxSoc0G7JRP1jszGbv2718TOfhc2 I1NbvzTBoHB1gQGnG65sH8sIZ52m2+1MtCEuCT9moMgEvctSPti0rTcpeS4vl3Pn YhR9UmHDS7OafAN3CYrODMz3Cjjpp2JcViTyop0oQyBC3DrJr7FNJiEYLY0+Oj8u AyEiEw3bpWLr2w== -----END CERTIFICATE-----Generated at Sat Dec 6 11:10:01 2025 by rpki-client